We have a number of machines in our inventory which were Filevault 2 encrypted prior to upgrading to JSS 8.6. Is there a way for their individual recovery keys to be inventoried and retrieved or do the machines need to be unencrypted and then re-encrypted using the JSS?
Answer
Is it possible to inventory a recovery key for an Already Encrypted FileVault volume?
+14Best answer by rich.trouton
You will need to decrypt the Mac, then encrypt the Mac again using a Casper policy. That will enable the JSS to record the new individual recovery key as part of the encryption process.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.